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Furthermore, the CPU 51 is connected, through an I/O port, to a communication 
device 56 and a communication control circuit 57 for communication with an external 
apparatus, and an input device 58 and an input control circuit 59 for receiving instructions 
from a user. 

Rewrite the paragraph starring at page 8, line 9 and ending at page 9, line 16 as 
follows: 

A display service 1 1 is a service which displays various data on the display device 
54. An input service 12 is a service which detects that a certain domain on a digitizer was 
pressed by a pen and the like, and provides input information to various services. An 
encryption communication service 13 interlocks with the Web browser service 10 and the 
like, and establishes an encryption communication with the application server 2. 

Furthermore, as shown in FIG. 1 , in the bard disk 64 of the application server 2, as a 
program characteristic to the present invention, a program corresponding to the following 
services is stored. 

Of these services, a Web server service 20 is a service which reads from the inside of 
the application server 2 and transmits the like data coded with the Hypertext Markup 
Language (HTML) required by the Hypertext Transfer Protocol (HTTP). An encryption 
communication service 21 interlocks with the Web server service 20 and the like, and 
establishes an encryption communication (SSL and TLS, for example) with the Web 
browser service 10. 

Furthermore, a secret key management service 22 is a service which manages, in 
data of the Web server service 20 on the application server 2, the Web E-mail service data 
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for example, to enable to use a secret key corresponding to a public key encryption 
necessary to decrypt a code applied to said E-mail data, or provide a digital signature on a 
created E-mail. 

Further, hereupon, for the convenience of description, the public key and the secret 
key of the public key cryptosystem is identifiably constituted by an E-mail address used by 
user. Furthermore, the public key and secret key always exist as a pair as the one and only 
key. 

Rewrite the paragraph starting at page 1 1, line 2 and ending at page 11, line 9, as 
follows: 

FIG. 8 is a diagram showing an example of the window of the information terminal 1 
in the case wbere a new E-mail is created, after the access by the Web browser service 10 of 
the in formation terminal 1 to the Web E-mail service 23 on the Web server service 20 of the 
application server 2 is succeeded, and the access to the allowance authentication for use of 
the secret key is also succeeded. 

Rewrite the paragraph starting at page 1 1, line 15 and ending at 12, line 7 as follows: 
FlGs. 1 0 to 1 1 indicate a flowchart showing a processing of the information terminal 
1 in the first embodiment of the present invention. FIG. 12 is a flowchart showing a 
processing of the application server 2 in the first embodiment of the present invention. FIG. 
13 is a flowchart continued from FTG. 12. FIG. 14 is a flowchart showing a signature 
processing in the information terminal 1, and FIG. 15 is a flowchart showing a signature 
processing in the application server 2. 
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Next, the processing characteristic to the present invention will be described in detail 
according to the flowcharts of FIGs. 10 to 15. 

First, by the browser service 10 of the information terminal 1, an address Uniform 
Resource Locator (URL) or Uniform Resource Indicator (URI) is inputted and transmitted 
through an input service 12 (step S1010 of FIG. 10). As an input method of the input 
service 12, a software keyboard and the like can be cited. -. 

Rewrite the paragraph starting at page 12, line 26 and ending at page 14, line 5 as 
follows: 

As a result, in the case where the received application server authentication is not 
acceptable to said information terminal 1, a message to the effect that tbe establishment of 
the encryption Web communication is rejected is transmitted to the application server 2 (step 
S1050 of FIG. 10). The encryption communication service 21 of the application server 2, 
upon receiving the message to the effect that tbe establishment of the encryption Web 
communication is rejected, transmits display data showing non-establishment of the 
encryption Web communication to the information terminal 1, and ends the operation (step 
S1060 of FIG. 12). The Web browser service 10 of the information terminal 1 displays the 
received display data showing non-establishment of the encryption Web communication, 
and ends the operation (step S 1070 of FIG. 10). 

In the case where the received application server authentication is acceptable to said 
information terminal 1, a message to the effect that the establishment of the encryption Web 
communication is transmitted to the application server 2 (step S1080 of FIG. 10). The 
encryption communication service 21, upon receiving a message to the effect that the 
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establishment of the encryption Web communication is acceptable, exchanges the remaining 
information necessary for the encryption Web communication with the encryption 
communication service 13. thereby to establish the encryption Web communication, starts a 
session program (hereafter referred to as a session) dedicated to perform encryption 
communication processing with said information terminal 1, and causes said session to 
manage the processing of the encryption data communication with said information terminal 
1. 

Rewrite the paragraph starting at page 14, line 15 and ending at page 15, line 4 as 
follows: 

Further, in the present invention, allowance for use of the secret key is authenticated 
using the encryption Web communication continuously established between the information 
terminal 1 and the application server 2 as a unit, in the case the session is closed, that is, in 
the case where the encryption Web communication established between a certain 
information terminal 1 and the application server 2 is closed, allowance of the authentication 
for use of the secret key is also cancelled simultaneously, as will be stated later. 

After the encryption Web communication is established, the Web server service 20 
of the application server 2 transmits access window data to the Web E-mail service 23 
required by the information terminal 1 in the step S1010 of FIG. 10, to the information 
terminal 1 (step S1090 of FIG. 12). --. 

Rewrite the paragraph starting at page 15, line 21 and ending at page 15, line 27 as 
follows: 
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The Web server service 20 of the application server 2, upon receiving the input data 
such as the display data, user ID and password (step SI 120 of FIG. 12), judges whether 1he 
received user ID and password are the user ID and the password registered in the application 
■ 2 as the correct data accessible to the Web E-mail service 23 (step SI 130 of FIG. 12). 



server. 



Rewrite the paragraph starting at page 17, line 26 and ending at page 18, line 5 as 
follows: 

As a result, in the case where the use of the secret key is allowed in the present 
session, that is, in the case where the present session continues as the session where the use 
is allowed once, the program proceeds to a step S1320 of FIG. 13. Furthermore, whether or 
not the same session is judged by an identifier such as a session number is determined. -. 

Rewrite the paragraph starting at page 19, line 17 and ending at page 20, line 16 as 
follows: 

As a result, if the passphrase is fail data, the Web E-mail service 23 transmits a 
message window data to the effect that the passphrase is fail data to the information terminal 
1 through the Web server service 20 (step S1290 of FIG. 13), ends a passphrase processing, 
and returns to a condition before the decryption software button 105 is pressed. The Web 
browser service 10 of the information terminal 1, upon receiving the message window data 
to the effect that the passphrase is fail data (step S 1300 of FIG. 1 1), analyzes such data, and 
displays by the display server 1 1 (step SI 310 of FIG. 1 1). 
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In the case where the passphrase is correct, the Web E-mail service 23 decrypts the 
secret key allowed for use of a copy of E-mail concerning a decryption request (step S1320 
of FIG. 13), and transmits display shape change data of a decryption software button 1 12 
and a signature software button 113 to the Web browser service 10 of the information 
terminal 1 through the Web server service 20 (step S1330 of FIG. 13). Furthermore, the 
display shape change data of the decryption software button 1 12 and the signature software 
button 1 13 is transmitted to indicate that the allowance for use of the secret key is obtained 
in the present session, and this secret key use allowance information is saved until said 
session is closed as additional information of the present session. -. 

Rewrite the paragraph starting at page 21, line 2 and ending at page 21, line 8 as 
follows: 

Next, in the Web server service 20 of the application server 2, there is a session 
which controls dialogue processing and the like with the information terminal 1, in the case 
where the secret key use allowance of the user of the information terminal 1 is retained, 
procedures for processing the digital signature to the created E-mail are described. -. 

Rewrite the paragraph starting at page 21, line 18 and ending at page 21, line 26 as 
follows: 

The Web E-mail service 23 of the application server 2, upon receiving Hie 
information of the press down of the E-mail generation software button 1 14 and the display 
data of FIG. 7 through the Web server service 20 (step S1410 of FIG. 15), transmits E-mail 
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creation window data and creation software highlight data to the Web browser service 10 of 
the information terminal 1 through the Web server service 20 (step S1420 of FIG. 15). --. 

Rewrite the paragraph starting at page 22, line 21 and ending at page 23, line 15 as 
follows: 

The Web E-mail service 23 of the application server 2, upon receiving the press 
down information of the signature software button 1 13 and the display data of FIG. 8 
through the Web server service 20 (step S1460 of FIG. 15), inquires to the secret key 
management service 22 as to whether the known session retains the secret key use allowance 
(stepS 1470 of FIG. 15). 

As a result, in the case where the known session does not retain the secret key use 
allowance, the same processing as the steps S1240, S 1270, and S1280 of FIG. 13 is executed 
(stepS 1480 of FIG. 15). 

In the case where the known session retains the secret key use allowance, the Web E- 
mail service 23 of the application server 2 causes the secret key management service 22 to 
execute a digital signature on a document of an E-mail concerning receiving and creation 
using the secret key concerning the use allowance of the above (step SI 490 of FIG. 15), and 
transmits the display window data of the contents of the E-mail executed by the digital 
signature to the Web browser service 10 the information terminal 1 through tbe Web server 
service 20 (step S1500 of FIG. 15). --. 

Rewrite the paragraph starting at page 24, line 22 and ending at page 25, line 27 as 
follows: 
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